friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
14ed2849c6
ibm-information-center/dist/eclipse/plugins/i5OS.ic.apis_5.4.0.1/gss_get_mic.htm

229 lines
5.6 KiB
HTML
Raw Normal View History

Add readme and dist folders
2024-04-02 14:02:31 +00:00
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Copyright" content="Copyright (c) 2006 by IBM Corporation">
<title>gss_get_mic()--Generate Cryptographic Signature for Message</title>
<!-- Begin Header Records ========================================== -->
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<!-- Change History: -->
<!-- Edited by Kersten Jan 02 -->
<!-- Created by Kent Hofer for V5R1 -->
<link rel="stylesheet" type="text/css" href="../rzahg/ic.css">
</head>
<body>
<!-- End Header Records ============================================ -->
<!--Java sync-link-->
<script type="text/javascript" language="Javascript" src="../rzahg/synch.js">
</script>
<a name="Top_Of_Page"></a>
<h2>gss_get_mic()--Generate Cryptographic Signature for Message</h2>
<div class="box" style="width: 80%;">
<br>
&nbsp;&nbsp;Syntax
<pre>
#include &lt;gssapi.h&gt;
OM_uint32 gss_get_mic(
OM_uint32 * <em>minor_status</em>,
gss_ctx_id_t <em>context_handle</em>,
gss_qop_t <em>qop_req</em>,
gss_buffer_t <em>input_message</em>
gss_buffer_t <em>output_token</em>);
</pre>
&nbsp;&nbsp;Service Program Name: QSYS/QKRBGSS<br>
<!-- iddvc RMBR -->
<br>
&nbsp;&nbsp;Default public authority: *USE<br>
<!-- iddvc RMBR -->
<br>
&nbsp;&nbsp;Threadsafe: Yes<br>
<!-- iddvc RMBR -->
<br>
</div>
<p>The <strong>gss_get_mic()</strong> function generates a cryptographic
signature for a message and returns this signature in a token that can be sent
to a partner application. The partner application then calls the
<strong>gss_verify_mic()</strong> routine to validate the signature.</p>
<br>
<h3>Parameters</h3>
<dl>
<dt><strong>minor_status</strong>&nbsp;&nbsp;(Output)</dt>
<dd>A status code from the security mechanism.<br>
<br>
</dd>
<dt><strong>context_handle</strong>&nbsp;&nbsp;(Input)</dt>
<dd>The context to be associated with the message when it is sent to the
partner application.<br>
<br>
</dd>
<dt><strong>qop_req</strong>&nbsp;&nbsp;(Input)</dt>
<dd>The requested quality of protection for the message. Specify
<strong>GSS_C_QOP_DEFAULT</strong> to use the default quality of protection as
defined by the selected security mechanism.
<p>The Kerberos security mechanism supports three quality of protection levels
as follows (in decreasing order or speed):</p>
<table cellpadding="5">
<tr>
<td align="left" valign="top"><em>GSS_KRB5_INTEG_C_QOP_MD5</em></td>
<td align="left" valign="top">Truncated MD5</td>
</tr>
<tr>
<td align="left" valign="top"><em>GSS_KRB5_INTEG_C_QOP_DES_MD5</em></td>
<td align="left" valign="top">DES_MAC of an MD5 hash (default)</td>
</tr>
<tr>
<td align="left" valign="top"><em>GSS_KRB5_INTEG_C_QOP_DES_MAC</em></td>
<td align="left" valign="top">Normal DES_MAC algorithm</td>
</tr>
</table>
<br>
<br>
</dd>
<dt><strong>input_message</strong>&nbsp;&nbsp;(Input)</dt>
<dd>The message for which a signature is to be generated.<br>
<br>
</dd>
<dt><strong>output_token</strong>&nbsp;&nbsp;(Output)</dt>
<dd>A token containing the message signature. The message and this token are
then sent to the partner application, which calls the
<strong>gss_verify_mic()</strong> function to verify the authenticity of the
message.</dd>
</dl>
<br>
<h3>Return Value</h3>
<p>The return value is one of the following status codes:</p>
<dl>
<dt><strong>GSS_S_BAD_QOP</strong></dt>
<dd>The requested quality of protection value is not valid.<br>
<br>
</dd>
<dt><strong>GSS_S_COMPLETE</strong></dt>
<dd>The routine completed successfully.<br>
<br>
</dd>
<dt><strong>GSS_S_CONTEXT_EXPIRED</strong></dt>
<dd>The referenced context has expired.<br>
<br>
</dd>
<dt><strong>GSS_S_CREDENTIALS_EXPIRED</strong></dt>
<dd>The credentials associated with the referenced context have expired.<br>
<br>
</dd>
<dt><strong>GSS_S_FAILURE</strong></dt>
<dd>The routine failed for reasons that are not defined at the GSS level. The
<em>minor_status</em> return parameter contains a mechanism-dependent error
code describing the reason for the failure.<br>
<br>
</dd>
<dt><strong>GSS_S_NO_CONTEXT</strong></dt>
<dd>The context identifier provided by the caller does not refer to a valid
security context.</dd>
</dl>
<br>
<h3>Authorities</h3>
<table border width="80%">
<tr>
<th align="left" valign="bottom">Object Referred to</th>
<th align="center" valign="bottom">Data Authority Required</th>
</tr>
<tr>
<td align="left" valign="top">Each directory in the path name preceding the
configuration file</td>
<td align="center" valign="top">*X</td>
</tr>
<tr>
<td align="left" valign="top">Configuration file</td>
<td align="center" valign="top">*R</td>
</tr>
</table>
<br>
<br>
<h3>Error Messages</h3>
<table width="100%" cellpadding="5">
<!-- cols="15 85" -->
<tr>
<th align="left" valign="top">Message ID</th>
<th align="left" valign="top">Error Message Text</th>
</tr>
<tr>
<td width="15%" valign="top">CPE3418 E</td>
<td width="85%" valign="top">Possible APAR condition or hardware failure.</td>
</tr>
</table>
<br>
<hr>
API introduced: V5R1
<hr>
<center>
<table cellpadding="2" cellspacing="2">
<tr align="center">
<td valign="middle" align="center"><a href="#Top_Of_Page">Top</a> | <a href=
"sec.htm">Security APIs</a> <br>
<a href="unix.htm">UNIX-Type APIs</a> | <a href="aplist.htm">APIs by
category</a> </td>
</tr>
</table>
</center>
</body>
</html>
Reference in New Issue Copy Permalink